popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name 6fb2664b822f978c_msedge_elf.dll
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\msedge_elf.dll
Size 3.9MB
Processes 2548 (NJTCFVIV.exe)
Type PE32+ executable (DLL) (GUI) x86-64, for MS Windows
MD5 12994ff0f8d80e35df9994bc47410fa0
SHA1 e9b353aca82a1b7d96847716f3f4f69e783422aa
SHA256 6fb2664b822f978c81ed0a8b92e2cea92bc81444ecc0523fcbefba76aa1b867c
CRC32 31143ECF
ssdeep 49152:1B3FRoUiZNneKuALVm76f7qOlTVhX9TbvIPULS9j3XZ90tXq+iarIQKf8klUSAXG:TizZu69xO9jnitKUkl
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsDLL - (no description)
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis
Name 6b8e21a669edf0bb_myasthenia.ini
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\myasthenia.ini
Size 5.4MB
Processes 2548 (NJTCFVIV.exe)
Type data
MD5 2f58fbc678569ae2a333276172f67b66
SHA1 f3a88733320352a7f40ad6ddb5d582a7e25df0c0
SHA256 6b8e21a669edf0bb2f4b90f31161f7ab3d3d283db751460a120646a513c65a25
CRC32 001FE090
ssdeep 98304:kiTabSEw6Owfgo7OVxrA8GeUUeMbL07aXWMQe5vb7Ie8oCxRRYxfDQd6tKefviBk:kGabSqOW1exs80fM874lIeexYxLlSB+B
Yara None matched
VirusTotal Search for analysis
Name 82f6587be2bc14c8_slog.pptx
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\slog.pptx
Size 71.1KB
Processes 2548 (NJTCFVIV.exe)
Type data
MD5 e5d73947e0835c489e083d6c77b0eb83
SHA1 0237ebc8e3b8e8863e9bf5f340d66843984ba1f3
SHA256 82f6587be2bc14c8a4f7a1543b4f8ec6b13f6d45f59584a0868ae47f7ac9f5e5
CRC32 3ACFF55C
ssdeep 1536:tzSD8fl/YQMNStVPvSrV/hIn3ULynig5BBLJTla:LtklrthIn3RHPNJE
Yara None matched
VirusTotal Search for analysis
Name 6a2d3876003f6c68_identity_helper.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\identity_helper.exe
Size 1.1MB
Processes 2548 (NJTCFVIV.exe)
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 f975a2d83d63a473fa2fc5206b66bb79
SHA1 e49d21f112ab27ae0953aff30ae122440cf164b9
SHA256 6a2d3876003f6c68f824df4f0033564d8c230716908ba2e6c06ea1dd6d5f98e8
CRC32 44C6C5E9
ssdeep 12288:IbCylcTVPbi7vT1K7n6HpVkg8KHIo5u0K1VmMxEnbuvuY2jTU+LHMA+nk2oG1ts:4lcTVPbikTMkg8KH/mmMxnvfphx8
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
VirusTotal Search for analysis